program: getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@multicast1, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000ac0)={[{@sysvgroups}, {@abort}, {@noinit_itable}, {@norecovery}, {@discard}, {@lazytime}, {@nogrpid}, {@usrquota}, {@noauto_da_alloc}], [{@dont_appraise}, {@subj_user}, {@subj_role={'subj_role', 0x3d, 'upperdir'}}, {@seclabel}, {@fowner_gt={'fowner>', r0}}, {@uid_eq={'uid', 0x3d, r0}}, {@fowner_eq={'fowner', 0x3d, r0}}]}, 0xfe, 0x563, &(0x7f0000000440)="$eJzs3c9rHFUcAPDvbH70R6pNoRT1IIEerNRumsQfFTzUo2ixoPe6JNNQsumW7KY0sWB7sBcvUgQRC+If4N1j8R/w6F9Q0EKREvTgJTKb2XTT7CabdNtsu58PTPvezCTvvbz5vn2zb5YNoG+NZf8UIl6NiG+TiMNNxwYjPzi2dt7Kw+vT2ZbE6upnfyeR5Psa5yf5/yN55pWI+O3riJOFzeVWl5bnSuVyupDnx2vzV8arS8unLs2XZtPZ9PLk1NSZd6Ym33/v3a619c3z//7w6d2PznxzfOX7X+4fuZ3E2TiUH2tuxxO40ZwZi7H8bzIUZx87caILhfWSZK8rwK4M5HE+FNkYcDgG8qgHXnxfRcQq0KcS8Q99qjEPaNzbd+k++Lnx4MO1G6DN7R9ce28k9tfvjQ6uJBvujLL73dEulJ+V8etfd25nW3TvfQiAbd24GRGnBwc3j39JPv7t3ukOznm8jB2Of6s7rBLQ5G42/3mr1fynsD7/iRbzn5EWsbsb28d/4X4Ximkrm/990HL+u75oNTqQ516qz/mGkouXymk2tr0cESdiaF+W32o958zKvbbjVPP8L9uy8htzwbwe9wf3bfyZmVKt9CRtbvbgZsRrLee/yXr/Jy36f+NK19aOpXdeb3ds+/Y/Xas/R7zRsv8frWglW69Pjtevh/HGVbHZP7eO/d6u/L1uf9b/B7du/2jSvF5b3XkZP+3/L213bLfX/3DyeT09nO+7VqrVFiYihpNPNu+ffPSzjXzj/Kz9J45vPf61uv4PRMQXHbb/1tFbbU/thf6f2VH/7zxx7+Mvf2xXfmf9/3Y9dSLf08n412kFn+RvBwAAAAAAAL2mEBGHIikU19OFQrG49nzH0ThYKFeqtZMXK4uXZ6L+WdnRGCo0VrpHmp6HmMifh23kJx/LT0XEkYj4buBAPV+crpRn9rrxAAAAAAAAAAAAAAAAAAAA0CNG2nz+P/PnwF7XDnjqfOU39K9t478b3/QE9CSv/9C/xD/0L/EP/Wur+B9+hvUAnj2v/9C/Oor/PzwNAC8ir//Qv8Q/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNX5c+eybXXl4fXpLD9zdWlxrnL11ExanSvOL04XpysLV4qzlcpsOS1OV+a3+33lSuXKxGQsXhuvpdXaeHVp+cJ8ZfFy7cKl+dJseiEdeiatAgAAAAAAAAAAAAAAAAAAgOdLdWl5rlQupwsSErtKDPZGNSTWEvWoTroQ3Xs6LAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADABv8HAAD//zupNTE=") mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) openat2$dir(0xffffff9c, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)={0x0, 0x0, 0xa}, 0x18) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) r1 = io_uring_setup(0xa87, &(0x7f0000000100)={0x0, 0xe850, 0x40, 0x2, 0x2f}) io_uring_setup(0x5d93, &(0x7f0000000180)={0x0, 0xe43e, 0x20, 0x0, 0xd2, 0x0, r1}) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, 0x0, 0x0) lseek(r1, 0x9, 0x1) chdir(&(0x7f00000003c0)='./bus\x00') r2 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x2) r3 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0) ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f00000001c0)=0xd0) r4 = syz_open_dev$cec(&(0x7f00000003c0), 0x0, 0x0) ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f00000001c0)=0xd0) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r5) close_range(r7, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r2, 0x0) r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) [ 75.928698][ T5300] Bluetooth: hci0: command tx timeout [ 76.015908][ T5320] loop0: detected capacity change from 0 to 1024 [ 76.030914][ T5320] ext4: Unknown parameter 'dont_appraise' [ 76.056388][ T5320] overlayfs: failed to resolve './file0': -2 [ 76.121653][ T5320] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 76.124919][ T5320] #PF: supervisor instruction fetch in kernel mode [ 76.127730][ T5320] #PF: error_code(0x0010) - not-present page [ 76.130422][ T5320] PGD 0 P4D 0 [ 76.131907][ T5320] Oops: Oops: 0010 [#1] SMP KASAN NOPTI [ 76.134284][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) [ 76.139286][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.144421][ T5320] RIP: 0010:0x0 [ 76.146111][ T5320] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 76.149305][ T5320] RSP: 0018:ffffc9000f6e7998 EFLAGS: 00010283 [ 76.152020][ T5320] RAX: ffffffff81f84ac4 RBX: 1ffffd4000269068 RCX: 0000000000100000 [ 76.155481][ T5320] RDX: ffffc9000ddda000 RSI: ffffea0001348340 RDI: ffff888050040380 [ 76.158904][ T5320] RBP: ffffc9000f6e7a50 R08: ffffea0001348347 R09: 1ffffd4000269068 [ 76.162391][ T5320] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000 [ 76.165807][ T5320] R13: ffffea0001348348 R14: ffffea0001348340 R15: 1ffffd4000269069 [ 76.169087][ T5320] FS: 00007fa8792c56c0(0000) GS:ffff88808d250000(0000) knlGS:0000000000000000 [ 76.172809][ T5320] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.175492][ T5320] CR2: ffffffffffffffd6 CR3: 000000003efd9000 CR4: 0000000000352ef0 [ 76.178818][ T5320] Call Trace: [ 76.180373][ T5320] [ 76.181726][ T5320] filemap_read_folio+0x117/0x380 [ 76.184060][ T5320] ? __pfx_filemap_read_folio+0x10/0x10 [ 76.186409][ T5320] ? filemap_add_folio+0x1af/0x270 [ 76.188629][ T5320] do_read_cache_folio+0x350/0x590 [ 76.190966][ T5320] freader_get_folio+0x3c4/0x830 [ 76.193195][ T5320] freader_fetch+0xa3/0x5d0 [ 76.195294][ T5320] __build_id_parse+0x133/0x7d0 [ 76.197602][ T5320] ? __pfx___build_id_parse+0x10/0x10 [ 76.200000][ T5320] ? find_vma+0xe7/0x160 [ 76.201975][ T5320] ? __pfx_find_vma+0x10/0x10 [ 76.203997][ T5320] ? query_matching_vma+0x1b2/0x1d0 [ 76.206231][ T5320] procfs_procmap_ioctl+0x7f0/0xce0 [ 76.208473][ T5320] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 76.210947][ T5320] ? __fget_files+0x2a/0x420 [ 76.213013][ T5320] ? __fget_files+0x2a/0x420 [ 76.215083][ T5320] ? __fget_files+0x3a0/0x420 [ 76.217150][ T5320] ? __fget_files+0x2a/0x420 [ 76.219249][ T5320] ? bpf_lsm_file_ioctl+0x9/0x20 [ 76.221578][ T5320] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 76.224163][ T5320] __se_sys_ioctl+0xf9/0x170 [ 76.226273][ T5320] do_syscall_64+0xfa/0x3b0 [ 76.228366][ T5320] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.230703][ T5320] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.233388][ T5320] ? clear_bhb_loop+0x60/0xb0 [ 76.235396][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.237955][ T5320] RIP: 0033:0x7fa87838e929 [ 76.240073][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.248575][ T5320] RSP: 002b:00007fa8792c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 76.252472][ T5320] RAX: ffffffffffffffda RBX: 00007fa8785b5fa0 RCX: 00007fa87838e929 [ 76.256173][ T5320] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000000 [ 76.259831][ T5320] RBP: 00007fa878410b39 R08: 0000000000000000 R09: 0000000000000000 [ 76.263390][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.266962][ T5320] R13: 0000000000000000 R14: 00007fa8785b5fa0 R15: 00007ffeb9995088 [ 76.270353][ T5320] [ 76.271649][ T5320] Modules linked in: [ 76.273226][ T5320] CR2: 0000000000000000 [ 76.274935][ T5320] ---[ end trace 0000000000000000 ]--- [ 76.277152][ T5320] RIP: 0010:0x0 [ 76.278893][ T5320] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 76.281955][ T5320] RSP: 0018:ffffc9000f6e7998 EFLAGS: 00010283 [ 76.284349][ T5320] RAX: ffffffff81f84ac4 RBX: 1ffffd4000269068 RCX: 0000000000100000 [ 76.287720][ T5320] RDX: ffffc9000ddda000 RSI: ffffea0001348340 RDI: ffff888050040380 [ 76.290972][ T5320] RBP: ffffc9000f6e7a50 R08: ffffea0001348347 R09: 1ffffd4000269068 [ 76.294585][ T5320] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000 [ 76.298079][ T5320] R13: ffffea0001348348 R14: ffffea0001348340 R15: 1ffffd4000269069 [ 76.301503][ T5320] FS: 00007fa8792c56c0(0000) GS:ffff88808d250000(0000) knlGS:0000000000000000 [ 76.305139][ T5320] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.307884][ T5320] CR2: ffffffffffffffd6 CR3: 000000003efd9000 CR4: 0000000000352ef0 [ 76.311507][ T5320] Kernel panic - not syncing: Fatal exception [ 76.314466][ T5320] Kernel Offset: disabled [ 76.316413][ T5320] Rebooting in 86400 seconds..