program:
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x2)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'veth1_virt_wifi\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x4, "00bf000100"}}}]}, 0x48}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000380)={'ip6_vti0\x00', &(0x7f0000000300)={'ip6_vti0\x00', <r5=>r4, 0x2f, 0x9, 0x4, 0x5, 0x5, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @ipv4={'\x00', '\xff\xff', @local}, 0x7800, 0x7, 0x4, 0xbf13}})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@ipv6_delroute={0x98, 0x19, 0x700, 0x70bd25, 0x25dfdbfe, {0xa, 0x10, 0x10, 0x40, 0xfd, 0x4, 0xfe, 0x3, 0x2000}, [@RTA_PRIORITY={0x8, 0x6, 0xfffffffb}, @RTA_OIF={0x8, 0x4, r5}, @RTA_MULTIPATH={0xc, 0x9, {0xfffe, 0x4, 0x7}}, @RTA_GATEWAY={0x14, 0x5, @remote}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x2}, @RTA_ENCAP_TYPE={0x6}, @RTA_METRICS={0x2c, 0x8, 0x0, 0x1, "d9d27ac10cb73f40ed6c397d4a3a83b85f09ceaa40753c355793706ef61d2c8dd264f289f4bb96ab"}, @RTA_UID={0x8, 0x19, 0xee01}, @RTA_EXPIRES={0x8, 0x17, 0x3}]}, 0x98}}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f00000000c0), 0x12)
ioctl$sock_ifreq(r6, 0x8935, &(0x7f0000000000)={'syz_tun\x00', @ifru_hwaddr=@remote})
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={<r7=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x3}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000840)={r7, @in={{0x2, 0x4e22, @empty}}, 0x2, 0x2, 0x614, 0x1, 0xd, 0x7, 0x4}, 0x9c)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})

[   75.656497][ T4673] Bluetooth: hci0: command tx timeout
[   75.831788][ T5323] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   75.835084][ T5323] #PF: supervisor instruction fetch in kernel mode
[   75.837913][ T5323] #PF: error_code(0x0010) - not-present page
[   75.840603][ T5323] PGD 0 P4D 0 
[   75.842135][ T5323] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[   75.844563][ T5323] CPU: 0 UID: 0 PID: 5323 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.848345][ T5323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.852882][ T5323] RIP: 0010:0x0
[   75.854399][ T5323] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   75.857580][ T5323] RSP: 0018:ffffc9000d33f958 EFLAGS: 00010283
[   75.860274][ T5323] RAX: ffffffff81fa8bb4 RBX: 1ffffd40000ff4f8 RCX: 0000000000100000
[   75.863479][ T5323] RDX: ffffc9000e0da000 RSI: ffffea00007fa7c0 RDI: ffff888042cff8c0
[   75.866807][ T5323] RBP: ffffc9000d33fa10 R08: ffffea00007fa7c7 R09: 1ffffd40000ff4f8
[   75.870079][ T5323] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   75.873285][ T5323] R13: ffffea00007fa7c8 R14: ffffea00007fa7c0 R15: 1ffffd40000ff4f9
[   75.876591][ T5323] FS:  00007fc24b3c26c0(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000
[   75.880338][ T5323] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.883104][ T5323] CR2: ffffffffffffffd6 CR3: 00000000119ce000 CR4: 0000000000352ef0
[   75.886445][ T5323] Call Trace:
[   75.887887][ T5323]  <TASK>
[   75.889177][ T5323]  filemap_read_folio+0x117/0x380
[   75.891641][ T5323]  ? __pfx_filemap_read_folio+0x10/0x10
[   75.894140][ T5323]  ? filemap_add_folio+0x35f/0x540
[   75.896442][ T5323]  do_read_cache_folio+0x350/0x590
[   75.898788][ T5323]  freader_get_folio+0x3c4/0x830
[   75.901714][ T5323]  freader_fetch+0xa3/0x5d0
[   75.903649][ T5323]  __build_id_parse+0x133/0x7d0
[   75.905680][ T5323]  ? __pfx___build_id_parse+0x10/0x10
[   75.907929][ T5323]  procfs_procmap_ioctl+0x76f/0xce0
[   75.910262][ T5323]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   75.912597][ T5323]  ? __fget_files+0x3a0/0x420
[   75.914640][ T5323]  ? __fget_files+0x2a/0x420
[   75.916575][ T5323]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.918585][ T5323]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   75.921027][ T5323]  __se_sys_ioctl+0xfc/0x170
[   75.923022][ T5323]  do_syscall_64+0xfa/0xfa0
[   75.924869][ T5323]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.927173][ T5323]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.929619][ T5323]  ? clear_bhb_loop+0x60/0xb0
[   75.931486][ T5323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.933983][ T5323] RIP: 0033:0x7fc24a58f749
[   75.935973][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.944887][ T5323] RSP: 002b:00007fc24b3c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.948369][ T5323] RAX: ffffffffffffffda RBX: 00007fc24a7e5fa0 RCX: 00007fc24a58f749
[   75.951669][ T5323] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000008
[   75.954919][ T5323] RBP: 00007fc24a613f91 R08: 0000000000000000 R09: 0000000000000000
[   75.958248][ T5323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.961381][ T5323] R13: 00007fc24a7e6038 R14: 00007fc24a7e5fa0 R15: 00007ffd6dae4aa8
[   75.964672][ T5323]  </TASK>
[   75.965887][ T5323] Modules linked in:
[   75.967478][ T5323] CR2: 0000000000000000
[   75.969339][ T5323] ---[ end trace 0000000000000000 ]---
[   75.971616][ T5323] RIP: 0010:0x0
[   75.973088][ T5323] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   75.976167][ T5323] RSP: 0018:ffffc9000d33f958 EFLAGS: 00010283
[   75.978713][ T5323] RAX: ffffffff81fa8bb4 RBX: 1ffffd40000ff4f8 RCX: 0000000000100000
[   75.982084][ T5323] RDX: ffffc9000e0da000 RSI: ffffea00007fa7c0 RDI: ffff888042cff8c0
[   75.985353][ T5323] RBP: ffffc9000d33fa10 R08: ffffea00007fa7c7 R09: 1ffffd40000ff4f8
[   75.988768][ T5323] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   75.992098][ T5323] R13: ffffea00007fa7c8 R14: ffffea00007fa7c0 R15: 1ffffd40000ff4f9
[   75.995491][ T5323] FS:  00007fc24b3c26c0(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000
[   75.999190][ T5323] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.001938][ T5323] CR2: ffffffffffffffd6 CR3: 00000000119ce000 CR4: 0000000000352ef0
[   76.005248][ T5323] Kernel panic - not syncing: Fatal exception
[   76.008243][ T5323] Kernel Offset: disabled
[   76.010120][ T5323] Rebooting in 86400 seconds..