program:
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x2, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000140)={0x0, 0x40, 0x4, {0x2, @raw_data="3d924b8271394fa4ec01eb92492ff84715d1a004d08b012a7cafe27a5f313d31bbdae50511ca5be6bfe92437ed0d21b5180e375be56b3b9306d7dbb26bf9f22de7ac7681cca450055250217bdf1113b4258293ba4efed33147bda8454dd115bd5ba066ba06f2854cc96db9a98055cbde9fd084a1223ada91ed2e832907a01ab5ee65f997b617f73d1aa5a6dfc47acdc5eb834f8e448469d235e4380cbcc3310200970349a3c1374ffec96177b67caa0656f9664277cadb8597e7d911ad1da457ef9744b0993c57a7"}})
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f00000004c0)=@fd={0x0, 0x2, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "0004f42d"}})
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r0, 0xc02054a5, &(0x7f0000000140)={0x8001, r2, 'id1\x00'})
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r4 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_ifreq(r4, 0x8923, &(0x7f0000000080)={'vxcan1\x00', @ifru_names='ip6erspan0\x00'})
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
r6 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0xa, r6, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000040)='dn:')
ioctl$sock_proto_private(r5, 0x8b21, &(0x7f0000000080))
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f00000001c0)=<r7=>0x0)
quotactl_fd$Q_QUOTAOFF(r4, 0xffffffff80000301, r7, 0x0)

[  115.243520][ T5320] Bluetooth: hci0: command tx timeout
[  115.284725][ T5339] BUG: kernel NULL pointer dereference, address: 0000000000000000
[  115.288194][ T5339] #PF: supervisor instruction fetch in kernel mode
[  115.291025][ T5339] #PF: error_code(0x0010) - not-present page
[  115.293753][ T5339] PGD 0 P4D 0 
[  115.295896][ T5339] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[  115.302126][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  115.311403][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.316252][ T5339] RIP: 0010:0x0
[  115.317886][ T5339] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  115.321105][ T5339] RSP: 0018:ffffc9000d5e7998 EFLAGS: 00010283
[  115.323645][ T5339] RAX: ffffffff81f848f4 RBX: 1ffffd40002684d8 RCX: 0000000000100000
[  115.326990][ T5339] RDX: ffffc9000e1da000 RSI: ffffea00013426c0 RDI: ffff888000591000
[  115.330433][ T5339] RBP: ffffc9000d5e7a50 R08: ffffea00013426c7 R09: 1ffffd40002684d8
[  115.333824][ T5339] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[  115.336976][ T5339] R13: ffffea00013426c8 R14: ffffea00013426c0 R15: 1ffffd40002684d9
[  115.340409][ T5339] FS:  00007f23a7b7c6c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[  115.344411][ T5339] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  115.347344][ T5339] CR2: ffffffffffffffd6 CR3: 0000000042472000 CR4: 0000000000352ef0
[  115.350972][ T5339] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  115.354355][ T5339] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  115.357770][ T5339] Call Trace:
[  115.359271][ T5339]  <TASK>
[  115.360613][ T5339]  filemap_read_folio+0x117/0x380
[  115.362749][ T5339]  ? __pfx_filemap_read_folio+0x10/0x10
[  115.365239][ T5339]  ? filemap_add_folio+0x1af/0x270
[  115.367525][ T5339]  do_read_cache_folio+0x350/0x590
[  115.369717][ T5339]  freader_get_folio+0x3c4/0x830
[  115.371815][ T5339]  freader_fetch+0xa3/0x5d0
[  115.373662][ T5339]  __build_id_parse+0x133/0x7d0
[  115.375603][ T5339]  ? __pfx___build_id_parse+0x10/0x10
[  115.377767][ T5339]  ? find_vma+0xe7/0x160
[  115.379508][ T5339]  ? __pfx_find_vma+0x10/0x10
[  115.381406][ T5339]  ? query_matching_vma+0x1b2/0x1d0
[  115.383470][ T5339]  procfs_procmap_ioctl+0x7f0/0xce0
[  115.385731][ T5339]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  115.388202][ T5339]  ? __fget_files+0x2a/0x420
[  115.390271][ T5339]  ? __fget_files+0x2a/0x420
[  115.392212][ T5339]  ? __fget_files+0x3a0/0x420
[  115.394233][ T5339]  ? __fget_files+0x2a/0x420
[  115.396323][ T5339]  ? bpf_lsm_file_ioctl+0x9/0x20
[  115.398434][ T5339]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  115.401090][ T5339]  __se_sys_ioctl+0xf9/0x170
[  115.403204][ T5339]  do_syscall_64+0xfa/0x3b0
[  115.405276][ T5339]  ? lockdep_hardirqs_on+0x9c/0x150
[  115.407567][ T5339]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.410363][ T5339]  ? clear_bhb_loop+0x60/0xb0
[  115.412471][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.415134][ T5339] RIP: 0033:0x7f23a6d8e929
[  115.417150][ T5339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.425691][ T5339] RSP: 002b:00007f23a7b7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  115.429327][ T5339] RAX: ffffffffffffffda RBX: 00007f23a6fb5fa0 RCX: 00007f23a6d8e929
[  115.432735][ T5339] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000005
[  115.436115][ T5339] RBP: 00007f23a6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  115.439168][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  115.442609][ T5339] R13: 0000000000000000 R14: 00007f23a6fb5fa0 R15: 00007ffe8601ee28
[  115.446045][ T5339]  </TASK>
[  115.447384][ T5339] Modules linked in:
[  115.449245][ T5339] CR2: 0000000000000000
[  115.451058][ T5339] ---[ end trace 0000000000000000 ]---
[  115.453352][ T5339] RIP: 0010:0x0
[  115.454901][ T5339] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  115.458454][ T5339] RSP: 0018:ffffc9000d5e7998 EFLAGS: 00010283
[  115.460939][ T5339] RAX: ffffffff81f848f4 RBX: 1ffffd40002684d8 RCX: 0000000000100000
[  115.463988][ T5339] RDX: ffffc9000e1da000 RSI: ffffea00013426c0 RDI: ffff888000591000
[  115.467126][ T5339] RBP: ffffc9000d5e7a50 R08: ffffea00013426c7 R09: 1ffffd40002684d8
[  115.470503][ T5339] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[  115.474084][ T5339] R13: ffffea00013426c8 R14: ffffea00013426c0 R15: 1ffffd40002684d9
[  115.477597][ T5339] FS:  00007f23a7b7c6c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[  115.481022][ T5339] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  115.483744][ T5339] CR2: ffffffffffffffd6 CR3: 0000000042472000 CR4: 0000000000352ef0
[  115.487069][ T5339] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  115.490411][ T5339] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  115.493703][ T5339] Kernel panic - not syncing: Fatal exception
[  115.496629][ T5339] Kernel Offset: disabled
[  115.498349][ T5339] Rebooting in 86400 seconds..