program:
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESOCT, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id'])
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})

[   74.563861][ T5299] Bluetooth: hci0: command tx timeout
[   74.598958][ T5320] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   74.602044][ T5320] #PF: supervisor instruction fetch in kernel mode
[   74.605665][ T5320] #PF: error_code(0x0010) - not-present page
[   74.608012][ T5320] PGD 0 P4D 0 
[   74.609391][ T5320] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[   74.611851][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00318-g739a6c93cc75 #0 PREEMPT(full) 
[   74.618552][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.628905][ T5320] RIP: 0010:0x0
[   74.631562][ T5320] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   74.635343][ T5320] RSP: 0018:ffffc9000d4ef998 EFLAGS: 00010283
[   74.637934][ T5320] RAX: ffffffff81f85424 RBX: 1ffffd40002696f8 RCX: 0000000000100000
[   74.641108][ T5320] RDX: ffffc9000e33a000 RSI: ffffea000134b7c0 RDI: ffff888034220e00
[   74.644217][ T5320] RBP: ffffc9000d4efa50 R08: ffffea000134b7c7 R09: 1ffffd40002696f8
[   74.647340][ T5320] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   74.650492][ T5320] R13: ffffea000134b7c8 R14: ffffea000134b7c0 R15: 1ffffd40002696f9
[   74.653584][ T5320] FS:  00007f43d0b846c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   74.657245][ T5320] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   74.660068][ T5320] CR2: ffffffffffffffd6 CR3: 0000000042b69000 CR4: 0000000000352ef0
[   74.663377][ T5320] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   74.666832][ T5320] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   74.670240][ T5320] Call Trace:
[   74.671638][ T5320]  <TASK>
[   74.672890][ T5320]  filemap_read_folio+0x114/0x380
[   74.675113][ T5320]  ? __pfx_filemap_read_folio+0x10/0x10
[   74.677412][ T5320]  ? filemap_add_folio+0x1af/0x270
[   74.679668][ T5320]  do_read_cache_folio+0x350/0x590
[   74.681724][ T5320]  freader_get_folio+0x3c4/0x830
[   74.683854][ T5320]  freader_fetch+0xa3/0x5d0
[   74.685774][ T5320]  __build_id_parse+0x133/0x7d0
[   74.687910][ T5320]  ? __pfx___build_id_parse+0x10/0x10
[   74.690140][ T5320]  ? find_vma+0xe7/0x160
[   74.691946][ T5320]  ? __pfx_find_vma+0x10/0x10
[   74.693969][ T5320]  ? query_matching_vma+0x1b2/0x1d0
[   74.696142][ T5320]  procfs_procmap_ioctl+0x7f0/0xce0
[   74.698292][ T5320]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   74.700652][ T5320]  ? __fget_files+0x2a/0x420
[   74.702601][ T5320]  ? __fget_files+0x2a/0x420
[   74.704630][ T5320]  ? __fget_files+0x3a0/0x420
[   74.706683][ T5320]  ? __fget_files+0x2a/0x420
[   74.708590][ T5320]  ? bpf_lsm_file_ioctl+0x9/0x20
[   74.710683][ T5320]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   74.713156][ T5320]  __se_sys_ioctl+0xfc/0x170
[   74.715227][ T5320]  do_syscall_64+0xfa/0x3b0
[   74.717221][ T5320]  ? lockdep_hardirqs_on+0x9c/0x150
[   74.719459][ T5320]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.722062][ T5320]  ? clear_bhb_loop+0x60/0xb0
[   74.724061][ T5320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.726502][ T5320] RIP: 0033:0x7f43cfd8e929
[   74.728385][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.736144][ T5320] RSP: 002b:00007f43d0b84038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.739613][ T5320] RAX: ffffffffffffffda RBX: 00007f43cffb5fa0 RCX: 00007f43cfd8e929
[   74.742946][ T5320] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000003
[   74.746341][ T5320] RBP: 00007f43cfe10b39 R08: 0000000000000000 R09: 0000000000000000
[   74.749577][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.753026][ T5320] R13: 0000000000000000 R14: 00007f43cffb5fa0 R15: 00007ffe378b3c18
[   74.756431][ T5320]  </TASK>
[   74.757776][ T5320] Modules linked in:
[   74.759470][ T5320] CR2: 0000000000000000
[   74.761282][ T5320] ---[ end trace 0000000000000000 ]---
[   74.763659][ T5320] RIP: 0010:0x0
[   74.765190][ T5320] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   74.768219][ T5320] RSP: 0018:ffffc9000d4ef998 EFLAGS: 00010283
[   74.770788][ T5320] RAX: ffffffff81f85424 RBX: 1ffffd40002696f8 RCX: 0000000000100000
[   74.774226][ T5320] RDX: ffffc9000e33a000 RSI: ffffea000134b7c0 RDI: ffff888034220e00
[   74.777773][ T5320] RBP: ffffc9000d4efa50 R08: ffffea000134b7c7 R09: 1ffffd40002696f8
[   74.781083][ T5320] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   74.784495][ T5320] R13: ffffea000134b7c8 R14: ffffea000134b7c0 R15: 1ffffd40002696f9
[   74.788441][ T5320] FS:  00007f43d0b846c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   74.792995][ T5320] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   74.796511][ T5320] CR2: ffffffffffffffd6 CR3: 0000000042b69000 CR4: 0000000000352ef0
[   74.800825][ T5320] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   74.804545][ T5320] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   74.807976][ T5320] Kernel panic - not syncing: Fatal exception
[   74.810798][ T5320] Kernel Offset: disabled
[   74.812705][ T5320] Rebooting in 86400 seconds..